juaromu / wazuh-mispLinks
☆17Updated 2 years ago
Alternatives and similar repositories for wazuh-misp
Users that are interested in wazuh-misp are comparing it to the libraries listed below
Sorting:
- ☆37Updated last year
- Wazuh integration TheHive☆38Updated 2 years ago
- Docker configurations for TheHive, Cortex and 3rd party tools☆126Updated 2 years ago
- Convert Sigma rules to Wazuh rules☆67Updated last year
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆68Updated 4 years ago
- ☆16Updated 3 years ago
- Useful scripts for those administering Wazuh☆84Updated last month
- ☆17Updated 3 years ago
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆29Updated 10 months ago
- Personal scripts☆15Updated 10 months ago
- ☆19Updated 3 years ago
- Run Velociraptor on Security Onion☆39Updated 3 years ago
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆39Updated 3 years ago
- Import CrowdStrike Threat Intelligence into your instance of MISP☆48Updated last month
- A curated list of awesome things related to TheHive & Cortex☆183Updated 3 years ago
- ☆119Updated last year
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆94Updated 3 years ago
- The FASTEST way to consume threat intel.☆68Updated 2 years ago
- Docker image for MISP☆132Updated last month
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆111Updated 2 years ago
- an awesome list of active defense resources☆123Updated 5 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆71Updated 2 years ago
- Standard-Format Threat Intelligence Feeds☆121Updated this week
- Cybersecurity Incident Response Plan☆91Updated 4 years ago
- The Enhanced MITRE ATT&CK® Coverage Tracker is an Excel tool for SOCs to measure and improve detection coverage of cyber threats. It simp…☆28Updated 7 months ago
- Run zeek with zeekctl in docker☆54Updated 10 months ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆44Updated last year
- Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…☆89Updated last month
- Docker image for Velocidex Velociraptor☆131Updated 4 months ago
- Parse wazuh[HIDS] alerts into ECS mapping using Filebeat☆27Updated 5 years ago